blob: 6815c665890030fbd24cae4a41749562640d3084 (
plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
|
FROM quay.io/fedora/fedora-bootc:{{ bootc_image_tag if bootc_image_tag is defined else '41' }}
ARG SKIP_ZFS={{ skip_zfs if skip_zfs is defined else 'False' }}
ARG SKIP_KVM={{ skip_kvm if skip_kvm is defined else 'False' }}
ARG SKIP_SHARES={{ skip_shares if skip_shares is defined else 'False' }}
# Basic Configuration
RUN mkdir /var/roothome && \
# System tools
dnf -y install firewalld git vim podman fish ansible wget dstat byobu smartmontools hdparm wireguard-tools NetworkManager-wifi rsync glances tree && \
# btm
dnf -y install `curl -s https://api.github.com/repos/ClementTsang/bottom/releases/latest | grep "browser_download" |grep -v musl |grep ".rpm" |awk -F '"' '{print $4}'` && \
# Cockpit
dnf -y install cockpit-ws cockpit-bridge cockpit-podman cockpit-storaged cockpit-system cockpit-selinux cockpit-ostree cockpit-networkmanager cockpit-files && \
dnf clean all && \
# Enable services
systemctl enable firewalld && \
systemctl enable cockpit.socket && \
# Disable and mask baked-in bootc services
systemctl disable bootc-fetch-apply-updates.timer && \
systemctl mask bootc-fetch-apply-updates.service && \
# Allow passwordless sudo
echo "%wheel ALL=(ALL) NOPASSWD: ALL" > /etc/sudoers.d/wheel-passwordless-sudo && \
# Configure firewall for cockpit and ssh access
firewall-offline-cmd --add-service cockpit && \
firewall-offline-cmd --add-service ssh
# ZFS
RUN if [ "$SKIP_ZFS" = "False" ]; then \
dnf -y install https://zfsonlinux.org/fedora/zfs-release-2-6.fc41.noarch.rpm && \
dnf -y install kernel-devel-$(ls /usr/lib/modules) && \
dnf -y install zfs && \
dkms build zfs/$(rpm -q --qf '%{VERSION}' zfs) -k $(ls /usr/lib/modules) && \
dkms install zfs/$(rpm -q --qf '%{VERSION}' zfs) -k $(ls /usr/lib/modules) && \
# cockpit-zfs-manager
git clone https://github.com/45drives/cockpit-zfs-manager.git /root/cockpit-zfs-manager && \
cp -r /root/cockpit-zfs-manager/zfs /usr/share/cockpit && \
rm -r /root/cockpit-zfs-manager && \
# Fix cockpit fonts/icons https://github.com/45Drives/scripts/blob/main/cockpit_font_fix/fix-cockpit.sh
mkdir -p /usr/share/cockpit/base1/fonts && \
curl -sSL https://scripts.45drives.com/cockpit_font_fix/fonts/fontawesome.woff -o /usr/share/cockpit/base1/fonts/fontawesome.woff && \
curl -sSL https://scripts.45drives.com/cockpit_font_fix/fonts/glyphicons.woff -o /usr/share/cockpit/base1/fonts/glyphicons.woff && \
curl -sSL https://scripts.45drives.com/cockpit_font_fix/fonts/patternfly.woff -o /usr/share/cockpit/base1/fonts/patternfly.woff && \
mkdir -p /usr/share/cockpit/static/fonts && \
curl -sSL https://scripts.45drives.com/cockpit_font_fix/fonts/OpenSans-Semibold-webfont.woff -o /usr/share/cockpit/static/fonts/OpenSans-Semibold-webfont.woff && \
# Sanoid and Syncoid
git clone https://github.com/jimsalterjrs/sanoid.git /root/sanoid && \
cd /root/sanoid && git checkout $(git tag | grep "^v" | tail -n 1) && cp sanoid syncoid findoid sleepymutex /usr/local/sbin && \
mkdir /etc/sanoid && cp sanoid.defaults.conf /etc/sanoid && touch /etc/sanoid/sanoid.conf && cp sanoid.conf /etc/sanoid/sanoid.example.conf && \
rm -r /root/sanoid && \
dnf -y install perl-Data-Dumper perl-Getopt-Long lzop mbuffer mhash pv && \
PERL_MM_USE_DEFAULT=1 cpan install Capture::Tiny && PERL_MM_USE_DEFAULT=1 cpan install Config::IniFiles && \
dnf clean all; \
fi
# KVM
RUN if [ "$SKIP_KVM" = "False" ]; then \
echo "qemu:x:107:107:qemu user:/:/sbin/nologin" >> /etc/passwd && \
dnf -y install qemu-kvm libvirt virt-install virt-viewer cockpit-machines && \
systemctl enable libvirt-guests && \
dnf clean all; \
fi
# Shares
RUN if [ "$SKIP_SHARES" = "False" ]; then \
dnf -y install perl samba samba-client samba-common-tools nfs-utils samba-winbind-clients && \
rpm --nodeps -i https://github.com/45Drives/cockpit-identities/releases/download/v0.1.12/cockpit-identities-0.1.12-1.el8.noarch.rpm && \
rpm --nodeps -i https://github.com/45Drives/cockpit-file-sharing/releases/download/v3.3.7/cockpit-file-sharing-3.3.7-1.el8.noarch.rpm && \
dnf clean all; \
fi
|
